Skip to main content

Oozie

2 CVEs product

Monthly

CVE-2025-26796 Maven MEDIUM This Month

** UNSUPPORTED WHEN ASSIGNED ** Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache Oozie. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apache XSS Oozie
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2018-11799 Maven MEDIUM PATCH This Month

Vulnerability allows a user of Apache Oozie 3.1.3-incubating to 5.0.0 to impersonate other users. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apache Information Disclosure Oozie
NVD
CVSS 3.0
6.5
EPSS
1.5%
EPSS 0% CVSS 5.4
MEDIUM This Month

** UNSUPPORTED WHEN ASSIGNED ** Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache Oozie. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apache XSS Oozie
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Vulnerability allows a user of Apache Oozie 3.1.3-incubating to 5.0.0 to impersonate other users. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apache Information Disclosure Oozie
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy